Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

cisco — Vulnerabilities & Security Advisories 3188

Browse all 3188 CVE security advisories affecting cisco. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cisco Systems operates as a global leader in networking hardware, software, and telecommunications services, providing critical infrastructure for enterprise connectivity and cloud security. With over 3,000 recorded CVEs, the company’s attack surface is extensive, reflecting the complexity of its diverse product portfolio. Historically, vulnerabilities frequently involve remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws, often stemming from legacy protocols or complex configuration interfaces. Notable incidents include the 2023 supply chain compromise affecting the Cisco AnyConnect Secure Mobility Client, which allowed attackers to bypass authentication mechanisms. These breaches highlight risks associated with widely deployed endpoint security agents. The sheer volume of disclosed issues underscores the challenges inherent in maintaining security across such a vast ecosystem of interconnected devices and software solutions, requiring rigorous patch management and continuous monitoring to mitigate potential exploitation by threat actors targeting critical network infrastructure.

Top products by cisco: Cisco Small Business RV Series Router Firmware Cisco IOS XE Software Cisco Adaptive Security Appliance (ASA) Software Cisco Identity Services Engine Software Cisco Firepower Management Center Cisco IOS XR Software Cisco Firepower Threat Defense Software Cisco NX-OS Software Cisco Data Center Network Manager Cisco SD-WAN vManage Cisco SD-WAN Solution Cisco Webex Meetings Cisco Unified Communications Manager Cisco Prime Infrastructure IOS Cisco Enterprise NFV Infrastructure Software Cisco IOS Cisco WebEx WRF Player Cisco Digital Network Architecture Center (DNA Center) Cisco Catalyst SD-WAN Manager Cisco Email Security Appliance (ESA) Cisco Unified Contact Center Express Cisco Aironet Access Point Software Cisco Secure Firewall Adaptive Security Appliance (ASA) Software Cisco Unified Computing System (Managed) Cisco Application Policy Infrastructure Controller (APIC) Cisco Unity Connection Cisco Wireless LAN Controller (WLC) Cisco Web Security Appliance (WSA) Cisco AnyConnect Secure Mobility Client
CVE IDTitleCVSSSeverityPublished
CVE-2023-20036 Cisco Industrial Network Director Command Injection Vulnerability — Cisco Industrial Network DirectorCWE-78 9.9 Critical2024-11-15
CVE-2023-20039 Cisco Industrial Network Director File Permissions — Cisco Industrial Network DirectorCWE-552 5.5 Medium2024-11-15
CVE-2023-20060 Cisco Prime Collaboration Deployment Cross-Site Scripting Vulnerability — Cisco Prime Collaboration DeploymentCWE-79 6.1 Medium2024-11-15
CVE-2023-20090 Cisco TelePresence Collaboration Endpoint and RoomOS Software Privilege Escalation Vulnerability — Cisco RoomOS SoftwareCWE-27 6.7 Medium2024-11-15
CVE-2023-20091 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability — Cisco TelePresence Endpoint Software (TC/CE)CWE-61 5.1 Medium2024-11-15
CVE-2023-20092 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability — Cisco RoomOS SoftwareCWE-61 4.4 Medium2024-11-15
CVE-2023-20093 Cisco TelePresence Collaboration Endpoint and RoomOS Software Arbitrary File Overwrite Vulnerability — Cisco RoomOS SoftwareCWE-61 4.4 Medium2024-11-15
CVE-2023-20094 Cisco TelePresence Collaboration Endpoint and RoomOS Software Information Disclosure Vulnerability — Cisco RoomOS SoftwareCWE-125 4.3 Medium2024-11-15
CVE-2023-20125 Cisco BroadWorks Network Server TCP Denial of Service Vulnerability — Cisco BroadWorksCWE-400 8.6 High2024-11-15
CVE-2023-20154 Cisco Modeling Labs External Authentication Bypass Vulnerability — Cisco Modeling LabsCWE-305 9.1 Critical2024-11-15
CVE-2024-20373 Cisco IOS and Cisco IOS XE SNMP Extended ACL Bypass Vulnerability — Cisco IOS XE Catalyst SD-WANCWE-284 5.3 Medium2024-11-15
CVE-2024-20418 Cisco Ultra-Reliable Wireless Backhaul Software Command Injection Vulnerability — Cisco Aironet Access Point Software (IOS XE Controller)CWE-77 10.0 Critical2024-11-06
CVE-2024-20540 Cisco Unified Contact Center Management Portal Stored Cross-Site Scripting Vulnerability — Cisco Unified Contact Center Management PortalCWE-79 5.4 Medium2024-11-06
CVE-2024-20539 Cisco Identity Services Engine Stored Cross-Site Scripting Vulnerability — Cisco Identity Services Engine SoftwareCWE-79 4.8 Medium2024-11-06
CVE-2024-20538 Cisco Identity Services Engine Cross-Site Scripting Vulnerability — Cisco Identity Services Engine SoftwareCWE-79 6.1 Medium2024-11-06
CVE-2024-20537 Cisco Identity Services Engine Authorization Bypass Vulnerability — Cisco Identity Services Engine SoftwareCWE-863 6.5 Medium2024-11-06
CVE-2024-20536 Cisco Nexus Dashboard Fabric Controller SQL Injection Vulnerability — Cisco Data Center Network ManagerCWE-89 8.8 High2024-11-06
CVE-2024-20534 Cisco IP Phone 6800, 7800, 8800, and 9800 Series with Multiplatform Firmware Stored Cross-Site Scripting Vulnerability — Cisco IP Phones with Multiplatform FirmwareCWE-79 4.8 Medium2024-11-06
CVE-2024-20533 Cisco IP Phone 6800, 7800, 8800, and 9800 Series with Multiplatform Firmware Stored Cross-Site Scripting Vulnerabilities — Cisco IP Phones with Multiplatform FirmwareCWE-79 4.8 Medium2024-11-06
CVE-2024-20532 Cisco Identity Services Engine Arbitrary File Read and Delete Vulnerability — Cisco Identity Services Engine SoftwareCWE-22 5.5 Medium2024-11-06
CVE-2024-20531 Cisco Identity Services Engine XML External Entity Injection Vulnerability — Cisco Identity Services Engine SoftwareCWE-611 5.5 Medium2024-11-06
CVE-2024-20530 Cisco Identity Services Engine Reflected Cross-Site Scripting Vulnerability — Cisco Identity Services Engine SoftwareCWE-79 6.1 Medium2024-11-06
CVE-2024-20529 Cisco Identity Services Engine Arbitrary File Read and Delete Vulnerability — Cisco Identity Services Engine SoftwareCWE-22 5.5 Medium2024-11-06
CVE-2024-20528 Cisco Identity Services Engine Path Traversal Vulnerability — Cisco Identity Services Engine SoftwareCWE-22 3.8 Low2024-11-06
CVE-2024-20527 Cisco Identity Services Engine Arbitrary File Read and Delete Vulnerability — Cisco Identity Services Engine SoftwareCWE-22 5.5 Medium2024-11-06
CVE-2024-20525 Cisco Identity Services Engine Reflected Cross-Site Scripting Vulnerability — Cisco Identity Services Engine SoftwareCWE-79 6.1 Medium2024-11-06
CVE-2024-20514 Cisco Evolved Programmable Network Manager and Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability — Cisco Evolved Programmable Network Manager (EPNM)CWE-79 5.4 Medium2024-11-06
CVE-2024-20511 Cisco Unified Communications Manager Cross-Site Scripting Vulnerability — Cisco Unified Communications ManagerCWE-79 6.1 Medium2024-11-06
CVE-2024-20507 Cisco Meeting Management Information Disclosure Vulnerability — Cisco Meeting ManagementCWE-200 4.3 Medium2024-11-06
CVE-2024-20504 Cisco Secure Email and Web Manager, Secure Email Gateway, and Secure Web Appliance Stored Cross-Site Scripting Vulnerabilities — Cisco Secure EmailCWE-80 5.4 Medium2024-11-06

This page lists every published CVE security advisory associated with cisco. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.